Amendments to the Claims: 

Re-write the claims as set forth below. This listing of claims will replace all prior versions and 
listings, of claims in the application: 

Listing of Claims: 

1. (Previously presented) An information security system comprising: 

a plurality of trusted authorities configurable in a rooted hierarchical structure including 
at least one of the trusted authorities being a superior authority and at least one of the trusted 
authorities being subordinate authority; 

the superior authority operative to generate inter trusted authority trust modification data, 
as policy control message data, to dynamically vary validation starting authorities among the 
subordinate authorities; and 

wherein at least one of the subordinate authorities includes a certificate issuer operatively 
responsive to the inter trusted authority modification data for issuing certificates for at least one 
subscriber based on the inter trusted authority modification data. 

2. (Canceled) 

3. (Canceled) 

4. (Previously presented) The system of claim 1 wherein the trust anchor 
modification data includes subordinate trust anchor data representing at least one trust anchor 
different from a local trust authority. 
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5. (Previously presented) The system of claim 1 wherein the superior authority 
includes a trust anchor modification data certificate issuer that provides trust anchor modification 
data as a signed data structure for the subordinate authorities. 

6. (Original) The system of claim 1 wherein the trust anchor modification data 
includes data representing at least one of: scope of certification data, subordinate authority cross- 
certification allowance data, subordinate authority certification rule data, subordinate authority 
password rule data, subscriber trust anchor rule data and subscriber password rule data, 
certificate expiry policy, subscriber algorithm policy, and policy control message data. 

7. (Original) The system of claim 1 wherein one of the trusted authorities is a root 
authority. 

8. (Original) The system of claim 1 including subordinate authority memory 
containing data representing validation starting authority data, wherein the data is stored in 
response to receiving the inter trusted authority trust modification data. 

9. (Previously presented) An information security system comprising: 

a plurality of trusted authorities configured in a rooted hierarchical structure 
including at least one of the trusted authorities being a superior authority and at least one of the 
trusted authorities being a subordinate authority; 

the superior authority operative to generate policy control message data to 
dynamically vary policy control data to facilitate trust authority policy delegation among the 



CHICAGO/#I 252287. 1 



3 



subordinate authorities wherein the policy control data includes inter trusted authority trust 
modification data to dynamically vary validation starting authorities among the subordinate 
authorities; and 

wherein at least one of the subordinate authorities includes a certificate issuer 
operatively responsive to the inter trusted authority modification data for issuing certificates for 
at least one subscriber based on the inter trusted authority modification data and further includes 
a subscriber trust anchor specifier, operatively responsive to the inter trusted authority 
modification data, that generates trust anchor modification data for a plurality of subscribers. 

10. (Original) The system of claim 9 wherein the trust anchor modification data 
includes subordinate trust anchor data representing at least one trust anchor different from a local 
trust authority. 

11. (Original) The system of claim 10 wherein the superior authority includes a trust 
anchor modification data certificate issuer that provides the trust anchor modification data as a 
signed data structure for the subordinate authorities. 

12. (Original) The system of claim 9 wherein the trust anchor modification data 
includes data representing at least one of: scope of certification data, subordinate authority cross- 
certification allowance data, subordinate authority certification rule data, subordinate authority 
password rule data, subscriber trust anchor rule data and subscriber password rule data, 
certificate expiry policy, subscriber algorithm policy, and policy control message data. 
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13. (Original) The system of claim 12 wherein one of the trusted authorities is a root 
authority. 

14. (Original) The system of claim 13 including subordinate authority memory 
containing data representing validation starting authority data, wherein the data is stored in 
response to receiving the inter trusted authority trust modification data. 

15. (Currently amended) A method for providing information security comprising: 
providing a plurality of trusted authorities configurable in a rooted hierarchical structure 

including at least one of the trusted authorities being a superior authority and at least one of the 
trusted authorities being a subordinate authority; 

generating inter trusted authority trust modification data to dynamically vary validation 
starting authorities among the subordinate authorities; and 

the subordinate authority, in response to the inter trusted authority trust modified data, 
change as a trust anchor for a subscriber unit and including issuing certificates for the subscriber 
unit based on the inter trusted authority modification data . 

16. (Canceled) 

17. (Original) The method of claim 15 including generating trust anchor modification 
data for a plurality of subscribers. 
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18. (Original) The method of claim 17 wherein the trust anchor modification data 
includes subordinate trust anchor data representing at least one trust anchor different from a local 
trust authority. 

19. (Original) The method of claim 15 including the step of providing the trust 
anchor modification data as a signed data structure for the subordinate authorities. 

20. (Original) The method of claim 15 wherein the trust anchor modification data 
includes data representing at least one of: scope of certification data, subordinate authority cross- 
certification allowance data, subordinate authority certification rule data, subordinate authority 
password rule data, subscriber trust anchor rule data and subscriber password rule data, 
certificate expiry policy, subscriber algorithm policy, and policy control message data. 

21. (Original) The method of claim 15 including the step of storing data representing 
validation starting authority data, in response to receiving the inter trusted authority trust 
modification data. 
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